diff options
Diffstat (limited to 'etc')
-rw-r--r-- | etc/xiphos.profile | 8 |
1 files changed, 7 insertions, 1 deletions
diff --git a/etc/xiphos.profile b/etc/xiphos.profile index 3ad03e2c6..33056395e 100644 --- a/etc/xiphos.profile +++ b/etc/xiphos.profile | |||
@@ -13,6 +13,7 @@ noblacklist ${HOME}/.xiphos | |||
13 | 13 | ||
14 | include disable-common.inc | 14 | include disable-common.inc |
15 | include disable-devel.inc | 15 | include disable-devel.inc |
16 | include disable-exec.inc | ||
16 | include disable-interpreters.inc | 17 | include disable-interpreters.inc |
17 | include disable-passwdmgr.inc | 18 | include disable-passwdmgr.inc |
18 | include disable-programs.inc | 19 | include disable-programs.inc |
@@ -20,8 +21,11 @@ include disable-programs.inc | |||
20 | whitelist ${HOME}/.sword | 21 | whitelist ${HOME}/.sword |
21 | whitelist ${HOME}/.xiphos | 22 | whitelist ${HOME}/.xiphos |
22 | include whitelist-common.inc | 23 | include whitelist-common.inc |
24 | include whitelist-var-common.inc | ||
23 | 25 | ||
26 | apparmor | ||
24 | caps.drop all | 27 | caps.drop all |
28 | machine-id | ||
25 | netfilter | 29 | netfilter |
26 | nodvd | 30 | nodvd |
27 | nogroups | 31 | nogroups |
@@ -36,7 +40,9 @@ seccomp | |||
36 | shell none | 40 | shell none |
37 | tracelog | 41 | tracelog |
38 | 42 | ||
43 | disable-mnt | ||
39 | private-bin xiphos | 44 | private-bin xiphos |
45 | private-cache | ||
40 | private-dev | 46 | private-dev |
41 | private-etc alternatives,fonts,resolv.conf,sword,ca-certificates,ssl,pki,crypto-policies | 47 | private-etc alternatives,fonts,resolv.conf,sword,ca-certificates,ssli,sword.conf,pki,crypto-policies |
42 | private-tmp | 48 | private-tmp |